Funtee Privacy Policy
Effective date: February 29, 2024
We are FUNTEE PTE. LTD., a company incorporated under the laws of Singapore (referred to as “Funtee”, “we”, “our” or “us”), and the registered address is 987 Serangoon Road Singapore (328147). For the purposes of applicable data protection laws, we are a data controller that decides the purposes and means of processing your personal information.
This Funtee Privacy Policy (the “Privacy Policy”) applies when you use our product(s) and/or services, including the Funtee App, whether or not as a registered user and whether or not as a VIP subscription user (“Our Services”).
This Privacy Policy describes our privacy practices, including the types of personal information we collect about you, how we collect, use, store, share, disclose, otherwise process (collectively “process”) and ensure security of your personal information for the purposes of and in relation to your use of Our Services, and your rights in relation to our processing of your personal information. This Privacy Policy does not apply to products and/or services provided by any third party as referred to or linked in Our Services, or any other products and/or services which are not provided by us. There may be specific notices given to you or consents obtained in relation to specific products and services – those terms (if any) supplement (but do not replace) this Privacy Policy.
Please read this Privacy Policy carefully (especially the clauses highlighted in bold) before considering whether to proceed and accept the use of Our Services. If you do not agree to the clauses of this Privacy Policy, please do not use Our Service. By using Our Services, you are acknowledging and consenting to this Privacy Policy.
Table of Contents
I.
How Do We Collect and Use Your Personal Information
II.
How Do We Share and Disclose Your Personal Information
III.
How Do We Internationally Transfer Your Personal Information
IV.
How Do We ProtectYour Personal Information
V.
Your Rights to Your Personal Information
VI.
No Children
VII.
Changes to This Privacy Policy
VIII.
Contact Us
IX.
Language
Appendix I: Jurisdiction-Specific Notices
Appendix II: List of Third-Party SDK Provider
I.
How Do We Collect and Use Your Personal Information
A.
Source of Collection& Category of Personal Information
We will collect and process the following personal information about you (depending on the way you use Our Services). “Personal information” or “personal data” means any information relating to an identified or identifiable natural person (“data subject”), who can be identified from that data, either by itself or when that data is combined with other data. Among others, please pay special attention to the information highlighted in italic which may be deemed as sensitive personal information in some jurisdictions and have larger impacts on personal rights and interests.
1.
Information that you provide to us
During the use of Our Services, you may provide us your personal information related to certain functions and services. If you choose not to provide certain personal information, then you cannot use the relevant functions and services, but it does not affect your use of other functions and services on Funtee App.
●
Account information
When using our Services, we will collect information about you when you set up an account to register for the Services: your name/nick name, email address, phone number, profile picture, verification code and password.
●
Third-party account information
If you choose to create an account or login through a third-party platform account (e.g. Facebook, Google, Tiktok or Apple ID etc.), we may collect your third-party platform account ID.
If you do not provide such information, you can still use Funtee App as a visitor, but you cannot use the services only for registered users, VIP services or paid contents.
●
Communication information
When you contact us, we may collect your email address, and the contents of text messages, chats, or phone calls.
If you do not provide such information, we cannot make communications with you or respond to your requests.
●
Financial information
When using Our Services and making payments via third-party payment providers (e.g. Apple Pay and Google Pay), we will collect your third-party payment account ID, order number, time and amount of the payment.
If you do not provide such information, you can still use the free services on Funtee App, but you cannot make the payment and use the paid services.
●
Other information
When you create an account or login, we may collect your language preference for Funtee App.
If you do not provide such information, you can still use Funtee App in default settings (the language is English), but you cannot enjoy Our Services in a more customized way.
2.
Information we automatically collect and generate about you
When you use Our Services, we will collect and generate certain personal information about you relating to your use of Our Services, including:
●
Information relating to your use of Our Services and preferences
When using Our Services, we will collect and generate personal information to create inferences about you, such as your search history, browsing and viewing history, and purchase history. You can review your histories of using Our Services, and we can provide you with content that you may be interested in.
If you choose to delete the histories, you can still use the Funtee App, but you cannot review your histories.
●
Network and device related information
When you use Our Services, we will collect and generate information about you relating to your IP address, device type, device model, universally unique identifier, operating system, mobile network information (including operator name), app version, storage and other related information. We may also collect information as to how your device interacts with our application(s) and/or platform(s), including pages you have visited and links you have clicked. The purpose of collecting such information is for us to continuously work on our product and services, improve its functionalities, ensure that we protect your account and system, and to be able to provide continuous and stable services for your use of Our Services.
If we do not collect and use such information, we cannot provide you with Our Services in a secured and satisfactory manner.
3.
Information we obtain from other sources
We may obtain your personal information from other sources, including:
●
Information obtained from other parties relating to account set-up
When you use Our Services, if you use your third-party platform account (e.g. Facebook, Google, Tiktok or Apple ID etc.) to create a Funtee App account and sign in to Our Services, we will obtain your account ID from such third-party platform for the purposes of your user account set-up, as well as to protect your account and prevent security risks.
If we do not collect and use such information, you can still use Funtee App as a visitor, but you cannot use the services only for registered users, VIP services or paid contents.
●
Information obtained from service providers relating to product purchase
If you purchase our VIP services or any other paid content(s) (as the case may be), we will obtain information relating to your product purchase(s) from our partnering payment service provider (e.g. Google Pay or Apple Pay) for the purposes of verifying your payment status and allowing us to identify your account to assist with enabling your access to the relevant purchased services, products and/or features.
Please note that we will only collect personal information about your purchased product(s), payment reference and your user ID. We do not collect your bank account number, payment password or other types of payment information.
If we do not collect and use such information, you can still use the free services on Funtee App, but you cannot make the payment and use the paid services.
●
Information obtained from SDK providers
Our Services may contain third-party SDKs (i.e., Software Development Kit) or other similar applications for technical services and statistics services, and such SDK providers will directly collect your personal information to perform their services.
Other than those specified above, we will not obtain any of your personal information from any third party(ies) without your prior authorisation. If we need to obtain your personal information from any third party(ies), we will ensure that our collection and use are lawful in applicable jurisdictions.
As part of our practice, we will:
●
take measures to ensure, to the extent possible, that the other party(ies) concerned has either obtained your consent or is sharing your personal information with us within the permitted scope under relevant laws (including but not limited to entering into contracts with such third party, as appropriate);
●
require the other party(ies) to commit to ensuring that they abide to lawful privacy practice and measures; and
●
where the manner or scope of use exceeds the original authorisation, seek (or ask the other party to seek) further consent from you before collecting and using such personal information.
We will ensure that we apply the same level of security safeguards and measures to any personal information collected, whether those collected directly from you or as obtained from other sources.
B.
Purpose of Collection and Use
We will use your personal information collected for the following purposes:
●
to provide you with Our Services and perform our obligations to you (under any contractual agreements between us or otherwise), and to manage Our Services and your use of Our Services;
●
to provide software updates, maintenance services and support for Our Services;
●
to help you manage your account(s) relating to Our Services, including to handle any of your registration and log-in request(s), verification and performance of transactions relating to payment;
●
to provide you with content that you may be interested in;
●
to consider and respond to any of your queries, requests and/or feedback (as relevant);
●
to identify, monitor, protect against and prevent any fraud or other legal, security, information or technical risks which may affect the security and/or reliability of Our Services;
●
to conduct market survey, data and statistical analysis and processing relating to Our Services in order to maintain and/or improve Our Services;
●
to facilitate internal purposes such as auditing; and
●
to comply with all legal and regulatory obligations under all relevant laws and to exercise or defend our rights.
If we intend to use your personal information for any other purposes which are not covered under this Privacy Policy, we will first notify you of such additional purposes, and obtain your consent or satisfy another legal basis under applicable data protection laws.
C.
Legal Basis for Collection, Use and Processing
We will collect, use and otherwise process your personal information in accordance with this Privacy Policy if you consent so before using Our Services. In some jurisdictions, consent is not required and we are permitted to collect, use and otherwise process your personal information in accordance with this Privacy Policy after notification.
We are also permitted by applicable data protection laws to collect, use and otherwise process your personal information without your consent, if any other legal basis applies. The commonly used legal bases include the following, but may differ in your jurisdiction.
●
Where the processing is necessary for the conclusion and performance of contract between you and us.
Such as the following purposes: to provide you with Our Services and perform our obligations to you (under any contractual agreements between us or otherwise), and to manage Our Services and your use of Our Services; to help you manage your account(s) relating to Our Services, including to handle any of your registration and log-in request(s), verification and performance of transactions relating to payment; to provide software updates, maintenance services and support for Our Services; to consider and respond to any of your queries, requests and/or feedback (as relevant).
●
Where the processing is necessary for the performance of our legal obligations.
Such as the following purposes: to comply with all legal and regulatory obligations under all relevant laws and to exercise or defend our rights.
●
Where the processing is necessary for the legitimate interests pursued by us or by a third party.
Legitimate interests typically include: physical security, IT and network security; prevention of fraud, misuse of services, or money laundering; conventional direct marketing and other forms of marketing or advertisement; processing for research purposes (including marketing research); processing for historical, scientific or statistical purposes; exercise of the right to freedom of expression or information, including in the media and the arts; unsolicited non-commercial messages; enforcement of legal claims including debt collection via out-of-court procedures.
Such as the following purposes: to identify, monitor, protect against and prevent any fraud or other legal, security, information or technical risks which may affect the security and/or reliability of Our Services; to conduct market survey, data and statistical analysis and processing relating to Our Services in order to maintain and/or improve Our Services; to provide you with content that you may be interested in; to facilitate internal purposes such as auditing.
D.
Retention Period of Personal Information
Generally, we will only store your personal information for no longer than necessary for the provision of Our Services, except where we are legally required to retain certain types of information or documents for a longer period of time as required by any relevant laws, court decision, ruling or other legal proceedings, government authorities and/or regulators, or for any other legitimate reasons.
Upon the expiration of such period, we will delete and/or anonymise your personal information according to applicable laws. If your personal information is disclosed to any other party(ies), we will require such those party(ies) to do the same.
If Our Service(s) cease(s) to operate, we will notify you by way of push notification or announcement and will delete or anonymise your personal information within any timeframe required under applicable laws or in line with our data retention period.
E.
Automated Decision-Making (including Profiling)
Currently, we do not use your personal information for automated decision-making (including profiling) during Our Services.
II.
How Do We Share and Disclose Your Personal Information
A.
Scenarios of Sharing and Disclosure
We will not share, entrust, or otherwise disclose your personal information other than as specified below. If we intend to share, entrust, or otherwise disclose your personal information in other scenarios which are not covered under this Privacy Policy, we will first notify you of such additional scenarios, and obtain your consent or satisfy another legal basis under applicable data protection laws.
1.
Sharing and entrustment within Funtee Group companies.
In order to provide and improve Our Services, as well as to provide IT support, maintenance and customer services, we may share your personal information with, or entrust the processing of your personal information to, our related companies and/or our affiliates (collective “Funtee Group”).
2.
Sharing and entrustment with third-party business partners.
You understand and acknowledge that some of Our Services will be provided by or through collaboration with our business partners, and we may therefore share, entrust the processing of, or otherwise disclose your personal information (as necessary) to the following types of third parties. We may engage or change different third parties from time to time, and you can contact us to request more information of the latest and specific third parties.
(1)
Data processor – We entrust third-party processors to process the personal information that is necessary to perform their entrusted work, including:
●
Cloud service provider: We entrust cloud service provider to provide the infrastructure, cloud storage, and relevant technical support.
3.
Disclosure to the extent as required by legal or regulatory requirements
As required under relevant laws and regulations and/or as required by competent authorities and regulators in applicable jurisdictions (as the case may be), we may be required to disclose your personal information to relevant court, judicial authority, law enforcement agency, government organ, competent authorities, regulators, other similar entities, or their designated third parties, in order to safeguard your rights, uphold public interests, exercise or defend our legal rights and interests, or for other legitimate reasons.
4.
Disclosure consequential to change-of-control events
If we are engaged in a merger, acquisition, reorganisation, division, bankruptcy, transfer of asset or similar transaction which may involve the potential transfer of all or part of your personal information to the succeeding entity, we will notify you in this regard and request, to the extent possible, that the incoming data controller abide by this Privacy Policy and the privacy practices as stipulated herein. We will, if so required by applicable data protection laws, also obtain your consent or satisfy another legal basis for such transfer of your personal information.
B.
Safeguards for Sharing or Disclosure
When sharing, entrusting, or otherwise disclosing your personal information, we will take adequate measures to protect your personal information, including but not limited to the following:
●
we will notify you in advance, and obtain your consent or satisfy another legal basis as necessary;
●
we will contractually bind the recipients or processors of your personal information with responsibilities and obligations to uphold privacy principles;
●
we will ensure that our security team conducts a data privacy assessment as necessary, and where feasible, try to anonymise or de-identify such personal information before any sharing, entrusted processing, or other disclosure; and
●
we will request the recipients or processors to retain your personal information for no longer than necessary for the performance of their services and entrusted work, and delete or anonymize your personal information after the retention period expires.
III.
How Do We Internationally Transfer Your Personal Information
Our Services are available in multiple countries and regions (collectively “jurisdictions”), and we leverage our centralized data centre to store and process the personal information of our users worldwide, in order to provide better services with higher efficiency and lower costs.
We currently store and process all of your personal information that we collect in our data centre (provided by third-party cloud service provider) located in Singapore, which means, upon collection, your personal information will be transferred to Singapore via the Internet; and our affiliates outside Singapore may remotely access and process your personal information in order to provide IT support, maintenance and customer services to you, but such information will not leave Singapore. As we do not have a data centre in each jurisdiction, if you refuse such international transfer of your personal information, you cannot use Our Services at all.
Singapore may have data protection laws that are different from the data protection laws in your jurisdiction. We will take measures to comply with the legal requirements on international transfer of personal information in applicable jurisdictions, and try to achieve materially equivalent level of data protection in your jurisdictions. Such measures include but are not limited to: obtaining your informed consent to such international transfer, entering into standard contractual clauses (if available in your jurisdiction) or other similar contract with data protection clauses, and adopting other organizational and technical measures to safeguard the security of personal information and protect your privacy.
IV.
How Do We Protect Your Personal Information
We highly respect your privacy and the security of personal information, and adopt a variety of technical, organizational, and physical measures to safeguard your personal information conforming with legal requirements and market standards to support our infrastructure and systems, and try our best to minimise the risks of unauthorised access, leakage, damage, misuse or alteration of your personal information.
Our safeguards are as follows:
A.
Technical Measures
We adopt encryption technology such as transport layer security to prevent the data transmission from being tapped or intercepted; adopt security storage measures such as classified and layered disposal of data; adopt strict data access control system and identity verification technology; monitor data processing to avoid illegal access or unauthorised use of data; monitor and audit the full data lifecycle to prevent unauthorised access, disclosure, use, alteration, as well as intended or unintended damage or loss of personal information.
B.
Organisational and Management Measures
We have a designated department specifically designed to handle personal information and data privacy matters. We also have relevant internal control management policies and systems in place to minimise unnecessary employee access to personal information unless otherwise necessary to carry out their job duties and responsibilities, including standards regarding the secure use of business data and standard management system. We arrange for our employees to participate in relevant data privacy training(s) on a regular basis and take other practicable organisational and management measures, such as locking the storage area for personal information and restricting employees’ access to the storage area unless otherwise necessary to carry out their job duties and responsibilities.
C.
Handling of Security Incidents
We have set up an emergency response centre and put in place certain security management rules and emergency response plans, which clearly sets out the reporting procedures regarding the handling of security incidents and emergency responses in case of a data breach incident. In case of a data breach incident, we will take appropriate actions under our emergency preparedness plan (EPP) to contain such incident and minimize the impacts as much as possible. If required by applicable data protection laws, we will report such incident to the competent authorities, and/or notify you of such incident as soon as reasonably practicable by way of electronic notice, push notification and/or public announcement. Depending upon where you live, you may have the legal right to receive notice of a data breach incident in writing.
Please note and understand that we cannot guarantee that the Internet is 100% secure. Notwithstanding the above measures, we cannot guarantee that your personal information will be 100% secure. If you create an account, or are otherwise provided access to Our Services, you are responsible for maintaining the security of your password at all times and for any activity occurring while logged into your account. In order to assist us in protecting your account security, we strongly advise that you create a secure password and ensure that you use your account in a secure manner. If it comes to your notice that your password has been leaked or other security threats may occur, please contact us immediately for us to take relevant measures to ensure the security of your account and Our Services.
V.
Your Rights to Your Personal Information
A.
What Rights Do You Have about Your Personal Information
We would like to ensure that you are fully aware of your personal information related rights. Privacy and data protection laws in different jurisdictions may differ from each other. You are entitled to the rights listed below, and the users in specific jurisdictions may have additional rights under applicable data protection laws, and please refer to “Appendix I: Jurisdiction-Specific Notices” for details.
Please be noted your rights to your personal information are not absolute, and sometimes may be subject to certain conditions and limitations under applicable laws and regulations. We will explain in our response if we cannot fully satisfy your requests.
1.
Right to Know
You have the right to be informed of the processing of your personal information, unless otherwise provided by applicable data protection laws. We provide this Privacy Policy to notify you of the details of how we process and protect your personal information, and you can also contact us to request further information and explanation.
2.
Right to Access and Copy
You have the right to inquire or access your personal information relating to Our Services, and request for a copy of such personal information. You can visit the relevant pages on Funtee App to access some of your personal information at any time (such as account information and viewing history) , and you can also contact us to request access to other personal information.
3.
Right to Rectification
You have the right to request us to correct, complete, or update your personal information if it is inaccurate, incomplete or out-of-date. You can also update some of your personal information (such as user name) at any time on relevant pages of Funtee App.
4.
Right to Delete
You have the right to request us to delete your personal information under permitted circumstances, such as: the personal information is no longer necessary for the purposes of processing; the data subject withdraws consent, and/or there is no other legal basis for the processing; the personal information has been unlawfully processed, etc. You can also delete some of your personal information (such as viewing history under “History”) at any time on relevant pages of Funtee App. However, we may still be legally entitled or required to retain some of your personal information based on other legal bases.
You understand and agree that when you delete your personal information from Our Services by yourself or with our help, we may not be able to immediately delete your information from the backup system subject to applicable laws and regulations and relevant security technology. We will store your personal information in a secure manner and separate such information from any further processing until such information is deleted or anonymised during the update of our backup system.
5.
Right to Restriction of Processing
You have the right to request us to restrict the processing of your personal information, under permitted circumstances, such as: the accuracy of the personal information is contested; the processing is in violation of laws and regulations, etc.
6.
Right to Consent and Withdraw Consent
You have the right to freely make your decision whether or not to consent to our processing of your personal information in accordance with this Privacy Policy, if consent is required for such processing in your jurisdiction.
Where the processing is based on your consent as the legal basis, you have the right to withdraw your consent to the continued processing of your personal information at any time, subject to legal or contractual restrictions and reasonable notice. After you withdraw your consent, we may not be able to continue providing you with the corresponding services. However, your withdrawal of consent will not affect the lawfulness of our previous processing of personal information based on your given consent.
7.
Close Your Account
You can close your accountat any time via “Me > Settings > Account Security > Delete Account” on Funtee App, and you can also contact us to request to close your account with our help, except as otherwise provided under applicable laws or as otherwise agreed under this Privacy Policy or User Agreement.
Once you close your account, your rights and interests generated during your use of Our Services will no longer apply. All contents, information, data and records relevant to your account will be deleted or anonymised (except as otherwise required by relevant laws or regulators). Your account closure is permanent and irreversible.
8.
Right to Make A Complaint
You may make a complaint to the relevant data protection authority regarding our processing of your personal information, in case that any processing is in violation of applicable data protection laws.
B.
How to Exercise Your Rights
You will not be discriminated against for your exercise of personal information related rights.
You can exercise your rights by contacting us in the following ways:
●
For security purposes, we must verify your identity before responding to your request. We may verify your identity by asking you to provide personal identifiers that we can match against information we may have collected from you previously. We may need to follow up with you to request more information to verify identity. We will not use personal information we collect in connection with verifying or responding to your request for any purpose other than responding to your request.
You have the right to designate an authorized agent to make a request on your behalf. We may deny a request from an agent that does not submit proof that they have been authorized by you to act on your behalf.
We will usually respond to your request within reasonable time after verifying your identity, or as otherwise stipulated by applicable laws and regulations. We do not charge fees for your reasonable requests. However, for unreasonable and repetitive requests, a fee may be charged.
We may have a reason under applicable laws and regulations that we may reject your request or respond it in a more limited way than you anticipated, such as for reasons of national security, public security and interests, the prevention and investigation of criminal offenses, the protection of data subjects or the rights and freedoms of others, etc. If we have such reason, we will explain that to you in our response. You can appeal a denial of request by contacting us as described in the notice of denial.
VI.
No Children
Our Services are target at adults instead of minors.
You must be at least 18 years of age (i.e., the minimum age required to become an adult under applicable laws, but such age may differ in your jurisdiction) or older to use Our Services. The minimum age differs in different jurisdictions, such as: 16 in EU/EEA, 16 in USA, 20 in Japan, 14 in South Korea, 20 in Thailand, 16 in Vietnam, 15 in Saudi Arabia, 21 in UAE.
Minors under such age may only use Our Services with the involvement, supervision, and approval of a parent or legal guardian, including reading and consenting to this Privacy Policy by a parent or legal guardian.
VII.
Changes to This Privacy Policy
We will review and update this Privacy Policy from time to time (generally on an annual basis) in response to changing legal, regulatory or operational requirements. We will make publicly available the latest version of this Privacy Policy on Funtee App, and will provide notice to notify you of any material changes in accordance with applicable laws.
Your continued use of Our Services after any such updates take effect will constitute acknowledgement and (as applicable) acceptance of those changes. If you do not wish to acknowledge or accept any updates to this Privacy Policy, you may raise a request or cancel your use of Our Services.
To see when this Privacy Policy was last updated, please see the “effective date” in the very beginning of this Privacy Policy. The latest and current version of this Privacy Policy will always be available at “Me > Settings > Legal Files> Privacy Policy” on Funtee App.
VIII.
Contact Us
If you have any questions about this Privacy Policy or our processing of your personal information, please contact our data protection office by email at privacy@funtee.com.
For any questions regarding the use of the Funtee App or VIP member services or any other general questions, please contact us by email at customerservice@funtee.com.
We may designate local representative in certain jurisdictions, and please refer to “Appendix I: Jurisdiction-Specific Notices” for details.
IX.
Language
Unless otherwise provided by applicable laws and regulations, in the event of any conflict between the English version of this Privacy Policy with any different language versions, the English version will prevail.
Appendix I: Jurisdiction-Specific Notices
A.
For Users in the United States
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”), subject to state-specific laws and regulations
●
Right to data portability: You have the right to receive the personal data that you have given us in a structured, commonly used, and machine-readable format, which also may be transmitted to another entity at your request without hindrance.
●
Right to opt out of sale or sharing of personal information: You have the right to opt out of the sale or sharing of your personal information to third parties.
Currently, we do not “share” your personal information for cross-context behavioral advertising or “sell” your personal information for monetary or other valuable consideration as defined by the CCPA, though we may indirectly benefit from the disclosure of your personal information to third parties in some ways, such as understanding the statistics about our services and making improvements accordingly.
●
Right to limit the use and disclosure of your sensitive personal information: You have the right to limit the use and disclosure of your sensitive personal information to the scope as necessary for the performance of services or provision of products.
●
Right to opt in to the collection and use of sensitive personal information: You have the right to opt in to the processing of your sensitive personal information.
●
Right to opt out of profiling using automated decision-making technology: You may have the right not to be subject to a decision solely based on profiling, except under certain exceptions under local laws.
●
Right of No Retaliation: You have the right to not be discriminated against for exercising any of your rights.
California’s “Shine the Light” Law. Additionally, California permits users who are California residents to request certain information regarding our disclosure of personal data to third parties for their direct marketing purposes. To make such a request, please contact us and put “Shine the Light” in the subject line of your request.
Do Not Track and Opt-Out Preference Signals. The “Do Not Track” (“DNT”) privacy preference is an option that may be made available in some web browsers allowing you to opt-out of tracking by websites and online services. At this time, global standard DNT technology is not yet finalized and not all browsers support DNT. We therefore do not recognize DNT signals and do not respond to them. We currently do not recognize opt-out preference signals, such as the Global Privacy Control (available here), as a request to opt-out of the sale or sharing of your personal information.
2.
Lists of Personal Information Processed in the Preceding 12 Months
a.
In the preceding 12 months, we have collected the following categories of personal information:
●
Account information: third-party platform account ID (e.g. Facebook, Google, Tiktok or Apple ID etc.)
●
Communication information: your email address, and the contents of text messages, chats, or phone calls between you and us.
●
Financial information: third-party payment account ID (e.g. Apple Pay and Google Pay), order number, time and amount of the payment.
●
Other information: your preference for Funtee App.
●
History information: search history, browsing and viewing history, and purchase history.
●
Network and device related information: IP address, device type, device model, universally unique identifier, operating system, mobile network information (including operator name), app version, storage and other related information.
b.
In the preceding 12 months, we have disclosed the following categories of personal information for a business purpose:
●
We have entrusted third-party cloud service provider to store all the personal information that we have collected (as mentioned above).
iii.
In the preceding 12 months, we have NOT “sold” or “shared” (as defined under the CCPA) any personal information.
B.
For Users in Japan
With regard to “III. A. Our Data Centre Located outside Your Jurisdiction”, please refer to this website https://www.ppc.go.jp/enforcement/infoprovision/laws/offshore_report_singapore/for detailed information on the legal system of personal information protection in Singapore where our data centre is located. You can find such information of more jurisdictions on this website https://www.ppc.go.jp/enforcement/infoprovision/laws/.
C.
For Users in South Korea
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to data portability: You may request the us, if meeting the criteria under laws and regulations, to transmit your personal information to you or to a third party in a form processable through a computer or other information processing device to the extent reasonable in terms of time, expenses, and technology.
●
Right not to be subject to automated decision-making: You have the right to refuse to accept a decision made through a fully automated processing of personal information or to request an explanation thereof.
●
Right to compensation: You have the right to appropriate redress for any damage arising out of the processing of such personal information through a prompt and fair procedure.
D.
For Users in Indonesia
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to data portability: You have the right to obtain your personal data in a format commonly used or readable by an electronic system, and use or send such data to another controller.
●
Right not to be subject to automated decision-making: You have the right to object to decision-making which based only on automatic processing, including profiling, which give rise to consequence law or have a significant impact on you.
●
Right to sue and compensation: You have the right to sue and accept compensation for violations of personal data processing.
E.
For Users in Malaysia
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to prevent processing for purposes of direct marketing: You have the right to request us to cease or not to begin processing his personal data for purposes of direct marketing.
●
Right to prevent processing likely to cause damage or distress: You have the right to request us to cease the processing or not begin the processing for a specified purpose or in a specified manner if such processing is causing or is likely to cause substantial damage or distress to you or to another person, and the damage or distress is or would be unwarranted.
F.
For Users in the Philippines
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to data portability: You have the right, where personal information is processed by electronic means and in a structured and commonly used format, to obtain a copy of data undergoing processing in an electronic or structured format, which is commonly used and allows for further use.
●
Right to compensation: You have the right to claim compensation if you believe you suffered damages due to inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorized use of personal data or for violations of your rights as a data subject.
G.
For Users in Thailand
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to data portability: You have the right to receive your personal data in the format which is readable or commonly used by ways of automatic tools or equipment, and can be used or disclosed by automated means. You also have the right to request us to send or transfer it to other data controllers, unless it is technically impossible.
●
Right to object: You have the right to object the collection, use, or disclosure of your personal data at any time in the following circumstances: where the processing is based on legitimate interests, is for the purpose of direct marketing, or is for the purpose of scientific, historical or statistic research.
H.
For Users in Vietnam
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to object to processing: You have the right to object to the processing of your personal data in order to prevent or restrict the disclosure of personal data or the use of personal data for advertising and marketing purposes, unless otherwise provided for by law.
●
Right to claim damage: You have the right to claim damage when there are violations against regulations on protection of your personal data, unless otherwise agreed by the parties or unless otherwise provided by law.
●
Right to self-protection: You have the right to self-protect or request competent agencies and organizations to implement civil right protection methods according to local laws and regulations.
2.
Others
You, as a data subject, have the obligations under local laws to:
●
Protect your own personal data; request relevant organizations and individuals to protect your personal data.
●
Respect and protect others’ personal data.
●
Fully and accurately provide your personal data when you consent to the processing.
●
Participate in dissemination of personal data protection skills.
●
Comply with regulations of law on protection of personal data and prevent violations against regulations on protection of personal data.
I.
For Users in Saudi Arabia
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to data portability: You have the right to request obtaining your personal data held by us in a readable and clear format, in accordance with the controls and procedures specified by applicable laws and regulations.
J.
For Users in Qatar
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to object: You have the right to object to processing the personal data if such processing is not necessary to achieve the purposes for which such personal data have been collected or where such collected personal data are beyond the extent required, discriminatory, unfair or illegal.
●
Right to know: You have the right to be notified of any disclosure of inaccurate personal data.
K.
For Users in UAE
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to data portability: You have the right to obtain your personal data provided to us for processing in a structured and machine-readable manner, so long as the processing is based on your consent or is necessary for the fulfilment of a contractual obligation and is made by automated means. You have the right to request the transfer of your personal data to another controller whenever this is technically feasible.
●
Right to object: You have the right to object to and stop the processing of your personal data in any of the following cases: if the processing is for direct marketing purposes, for the purposes of conducting statistical surveys, or if the processing is in violation of data processing principles.
●
Right not to be subject to automated decision-making: You have the right to object to decisions issued with respect to automated processing that have legal consequences or seriously affect you, including profiling.
L.
For Users in EU/EEA
1.
Personal Information Related Rights (in addition to “V. A. What Rights Do You Have About Your Personal Information”)
●
Right to data portability: You have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where legal ground applies.
●
Right to object: You have the right to object, on grounds relating to his or her particular situation, at any time to processing of your personal data which is based on public interests or legitimate interests, including profiling based on those provisions. Where personal data are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning him or her for such marketing, which includes profiling to the extent that it is related to such direct marketing.